Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/fZwyjdG2bT5ePLqyc3XsqYYxgwM.roa
File: fZwyjdG2bT5ePLqyc3XsqYYxgwM.roa (raw, json)
Hash identifier: eCQyLgYQga+Zj9saVXd/hGr9OHJqwylANr0+5cyarWM=
Subject key identifier: 7D:9C:32:8D:D1:B6:6D:3E:5E:3C:BA:B2:73:75:EC:A9:86:31:83:03
Certificate issuer: /CN=4131d1ddb6a355d93ccede3e2c1a38d949d1683e
Certificate serial: B2375B
Authority key identifier: 41:31:D1:DD:B6:A3:55:D9:3C:CE:DE:3E:2C:1A:38:D9:49:D1:68:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QTHR3bajVdk8zt4-LBo42UnRaD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/fZwyjdG2bT5ePLqyc3XsqYYxgwM.roa
Signing time: Sat 01 Jan 2022 06:54:48 +0000
ROA not before: Sat 01 Jan 2022 06:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2a11:8b40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11679579 (0xb2375b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4131d1ddb6a355d93ccede3e2c1a38d949d1683e
Validity
Not Before: Jan 1 06:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d9c328dd1b66d3e5e3cbab27375eca986318303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6f:31:94:8d:aa:55:d9:30:7a:06:7a:49:e4:
48:58:7e:51:b7:9a:ea:be:1d:52:85:5f:d2:80:c2:
e1:6e:aa:1f:25:e1:70:88:3a:83:7c:b8:e9:69:32:
b0:1d:b0:98:91:63:bf:f5:b6:f6:90:89:33:7b:86:
14:88:40:c2:bc:4a:44:99:89:2d:a0:3f:7b:95:0c:
16:17:e6:f6:52:84:b2:73:0f:d3:65:37:df:a9:47:
03:d6:ce:05:6f:9b:dd:e6:34:93:cb:12:bd:09:fe:
46:2a:5f:23:f0:73:68:42:97:dc:99:f1:1f:8d:b6:
69:f8:36:91:90:01:25:9c:2f:36:2c:27:fa:da:c9:
09:7b:2a:08:44:96:c4:2e:34:46:b1:14:9c:21:c7:
f9:aa:ed:ac:24:14:06:8d:70:c1:9c:cf:45:d1:99:
18:6c:7a:3d:77:f5:26:58:75:cb:dc:12:84:f4:3e:
6c:78:25:ff:bb:41:19:0d:fe:62:d2:c0:cb:96:cc:
88:8f:51:21:16:0d:3e:5c:69:2b:3f:25:58:12:89:
b3:2d:72:f2:3f:8f:34:b1:5a:d4:33:60:7b:a1:5b:
f4:cf:a5:ba:f1:33:e5:1b:e4:3e:d0:53:63:90:05:
cb:05:98:1e:bd:f5:e7:24:68:95:2e:45:24:d7:b0:
c2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9C:32:8D:D1:B6:6D:3E:5E:3C:BA:B2:73:75:EC:A9:86:31:83:03
X509v3 Authority Key Identifier:
keyid:41:31:D1:DD:B6:A3:55:D9:3C:CE:DE:3E:2C:1A:38:D9:49:D1:68:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTHR3bajVdk8zt4-LBo42UnRaD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/fZwyjdG2bT5ePLqyc3XsqYYxgwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/QTHR3bajVdk8zt4-LBo42UnRaD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8b40::/29
Signature Algorithm: sha256WithRSAEncryption
91:8a:5b:e5:d8:f0:c4:cc:75:a3:bb:e2:f8:5e:f9:b1:c9:0c:
3d:79:d9:19:49:5c:a9:7a:84:53:76:c2:fe:82:a4:e4:74:75:
cf:15:b3:e3:51:83:2c:0f:b7:19:0a:55:c3:38:db:de:46:0f:
07:b0:9c:af:50:7a:01:24:0a:1d:9d:40:97:70:ff:73:84:02:
8e:8b:29:31:92:11:85:86:91:f0:c5:08:b6:24:5e:65:2a:2a:
a8:e7:a0:db:d7:7a:57:b5:46:0b:72:35:30:10:84:3e:22:8f:
8e:c0:8a:13:47:73:99:7e:40:c3:e2:db:dc:8e:a7:58:70:ef:
95:bf:ce:12:82:bd:5c:51:8f:2e:53:89:8c:fb:d7:10:a0:f9:
4d:37:48:89:9a:de:36:40:74:6b:14:e4:87:67:68:6b:0e:d1:
6b:82:49:cb:6b:f9:bb:58:78:79:1f:cf:88:fa:76:72:9d:61:
a9:9c:4f:27:49:55:eb:f3:11:12:e9:ab:fa:42:19:ef:9e:98:
34:39:0b:31:30:2d:c0:01:a6:dd:b9:61:09:37:ef:09:69:47:
32:0b:14:ea:89:32:fb:a5:36:44:82:88:65:66:6e:ce:87:74:
e4:af:e6:20:c6:1f:f5:06:0b:d6:b0:3b:ed:43:43:0b:dc:f9:
7a:31:72:43
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEALI3WzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MTMxZDFkZGI2YTM1NWQ5M2NjZWRlM2UyYzFhMzhkOTQ5ZDE2ODNlMB4XDTIyMDEw
MTA2NTQ0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Q5YzMyOGRkMWI2
NmQzZTVlM2NiYWIyNzM3NWVjYTk4NjMxODMwMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOFvMZSNqlXZMHoGeknkSFh+Ubea6r4dUoVf0oDC4W6qHyXh
cIg6g3y46WkysB2wmJFjv/W29pCJM3uGFIhAwrxKRJmJLaA/e5UMFhfm9lKEsnMP
02U336lHA9bOBW+b3eY0k8sSvQn+RipfI/BzaEKX3JnxH422afg2kZABJZwvNiwn
+trJCXsqCESWxC40RrEUnCHH+artrCQUBo1wwZzPRdGZGGx6PXf1Jlh1y9wShPQ+
bHgl/7tBGQ3+YtLAy5bMiI9RIRYNPlxpKz8lWBKJsy1y8j+PNLFa1DNge6Fb9M+l
uvEz5RvkPtBTY5AFywWYHr315yRolS5FJNewwu0CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBR9nDKN0bZtPl48urJzdeyphjGDAzAfBgNVHSMEGDAWgBRBMdHdtqNV2TzO
3j4sGjjZSdFoPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FUSFIzYmFqVmRrOHp0NC1MQm80MlVuUmFENC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzEvNzAwZGYzLWU5YTAtNDUzYi1iZjhhLTJmYjY4YWM1NGUwMS8x
L2Zad3lqZEcyYlQ1ZVBMcXljM1hzcVlZeGd3TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzEv
NzAwZGYzLWU5YTAtNDUzYi1iZjhhLTJmYjY4YWM1NGUwMS8xL1FUSFIzYmFqVmRr
OHp0NC1MQm80MlVuUmFENC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoRi0AwDQYJKoZIhvcNAQELBQAD
ggEBAJGKW+XY8MTMdaO74vhe+bHJDD152RlJXKl6hFN2wv6CpOR0dc8Vs+NRgywP
txkKVcM4295GDwewnK9QegEkCh2dQJdw/3OEAo6LKTGSEYWGkfDFCLYkXmUqKqjn
oNvXele1RgtyNTAQhD4ij47AihNHc5l+QMPi29yOp1hw75W/zhKCvVxRjy5TiYz7
1xCg+U03SIma3jZAdGsU5IdnaGsO0WuCSctr+btYeHkfz4j6dnKdYamcTydJVevz
ERLpq/pCGe+emDQ5CzEwLcABpt25YQk37wlpRzILFOqJMvulNkSCiGVmbs6HdOSv
5iDGH/UGC9awO+1DQwvc+XoxckM=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:15 2023 by rpki-client on console-ams.rpki-client.org